I'm very confused about the logout action... the server should maintains a session? there is the need of a transient resource? i.e. a /user/session? this should be not restful, right?
On Thursday 06 September 2007 22:47:18 Stanczak Group wrote: > I would guess you would have to send a message telling them to login > using that role. So you would then check that role in your Guard and if > it fails send them to that page to login as that role. > > Davide Angelocola wrote: > > Hi, > > > > this is my first post on this mailing list. I'm wondering about porting > > a servlet/JSP webapp to REST. I've several roles this webapp and I > > allow the same user to have multiple roles, but only one role at once > > can do login. In this scenario I use the server session to store the > > username and role. > > > > In respect of a restful design how to implement the login/logout > > actions? Any idea/hint would be appreciated. > > > > Best Regards, > > -- Davide Angelocola -- -- Davide Angelocola
